Hi Jens/Christoph/Eric
I am working to add support for inline encryption/decryption
at storage protocols like nvmf over RDMA. Right now, the only
way to use the inline crypto feature is via fs-crypt. This patch
allows to use this feature also directly on a block device.
This patch comes after my former dm-crypt patch for inline encryption
was rejected ("[PATCH 1/1] dm crypt: Add inline encryption support")
by the maintainers. This alternative solution of a new block ioctl
was suggested by Christoph Hellwig and Eric Biggers.
I tested this patch with modified nvme-rdma as the block device.
I would like to collect some comments on this approach and I'll send the
entire patch set including NVMe/RDMA changes for inline encryption/decryption.
Israel Rukshin (1):
block: Add support for setting inline encryption key per block device
block/blk-core.c | 4 +
block/blk-crypto-internal.h | 19 +++-
block/blk-crypto-profile.c | 1 +
block/blk-crypto.c | 156 ++++++++++++++++++++++++++++++++
block/blk-sysfs.c | 7 ++
block/ioctl.c | 3 +
include/linux/blk-crypto.h | 11 +--
include/linux/blkdev.h | 2 +
include/uapi/linux/blk-crypto.h | 14 +++
include/uapi/linux/fs.h | 9 ++
10 files changed, 217 insertions(+), 9 deletions(-)
create mode 100644 include/uapi/linux/blk-crypto.h
--
2.18.2
